Overview

overview

3

Static

static

3

05a58e49a0...2c.pdf

windows7-x64

1

05a58e49a0...2c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 22:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    05a58e49a0f967b66ef82e0c148da62c.pdf

  • Size

    45KB

  • MD5

    05a58e49a0f967b66ef82e0c148da62c

  • SHA1

    2d3b1f1d0188687957256f59b3f2301dc49974aa

  • SHA256

    43907c5d8b8798d6f847eb7dce7e64c73a4e745bb4fb2b7a9acf67ae38603587

  • SHA512

    974b667f362262f95cb2ce4cda2c772ed38462b02e37ecaf3cf814059f176226cc5c01f8a1365e92d5546c35742ec8cceca8c756fb72ce47c95c00fe47c6ea86

  • SSDEEP

    768:lLJfcGhHqJrP0qsvlHvO47eMYbXTJNQwwHRuyq/G65LTyPdDhFng2Mq1Wt4tj:9pKtlsh50bjGxdqzLTyFXKqAtyj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\05a58e49a0f967b66ef82e0c148da62c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e8d858342779d0c6dcf918e9d0c3c490

    SHA1

    bc3fa0da7ce1d12f23830b31c18fc4ffd0aa6141

    SHA256

    116bc7fc24acd75685498d417340debe19b9ead107ad231186a80a11b2b8bb42

    SHA512

    f35d79e352a709ae3abf4d566996d0fd74ce4cf3ba6d953d17b99fb0c28397643b009b86d7e68ef62fdc267a034d53bbf9ace1bf7260153b008819ca296480f1

    Download Submit